Try our new research platform with insights from 80,000+ expert users

JFrog Xray vs PortSwigger Burp Suite Enterprise Edition comparison

JFrog and PortSwigger are both solutions in the Vulnerability Management category. JFrog is ranked #22 with an average rating of 8.2, while PortSwigger is ranked #21 with an average rating of 8.3. JFrog holds a 1.0% mindshare in VM, compared to PortSwigger’s 1.2% mindshare. Additionally, 100% of JFrog users are willing to recommend the solution, compared to 83% of PortSwigger users who would recommend it.
JFrog Xray
Read 8 JFrog Xray reviews
  • 626 Views
  • 492 Comparison Views
100% willing to recommend
PortSwigger Burp Suite Ente...
Read 11 PortSwigger Burp Suite Enterprise Edition reviews
  • 1,591 Views
  • 958 Comparison Views
83% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 9, 2024

JFrog Xray and PortSwigger Burp Suite Enterprise Edition compete in the software security analysis domain. PortSwigger Burp Suite Enterprise Edition is preferred for its comprehensive capabilities, while JFrog Xray is favorable for competitive pricing and support quality.

Features: JFrog Xray focuses on vulnerability scanning, integration, and supporting DevOps environments. It ensures open-source security and compliance across various ecosystems. PortSwigger Burp Suite Enterprise Edition provides advanced web application security testing, dynamic analysis, and automated vulnerability detection, offering more security tools than JFrog Xray.

Room for Improvement: JFrog Xray could enhance its features, broaden its security tools, and refine its automated capabilities. PortSwigger Burp Suite Enterprise Edition can improve its pricing structure, cloud support, and provide more comprehensive documentation for better user guidance.

Ease of Deployment and Customer Service: JFrog Xray offers flexible deployment for cloud and on-premise environments, with strong integration into diverse IT infrastructures and reliable customer service. PortSwigger Burp Suite Enterprise Edition simplifies deployment with straightforward installation and automation but primarily focuses on automation to ease user experience.

Pricing and ROI: JFrog Xray provides cost-effective options with promising ROI for robust DevOps integration. PortSwigger Burp Suite Enterprise Edition has a higher initial cost but promises high ROI due to its feature-rich security analysis, which many users find worth the investment despite the higher pricing.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed JFrog Xray vs. PortSwigger Burp Suite Enterprise Edition Report (Updated: October 2024).
Buyer's Guide
JFrog Xray vs. PortSwigger Burp Suite Enterprise Edition
October 2024
Download the complete report
Helped 816,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Customer Service

Sentiment score
7.0
JFrog Xray's customer service receives mixed reviews, with varying satisfaction in support response times and account manager interactions.
Sentiment score
8.1
PortSwigger Burp Suite Enterprise Edition offers responsive support, efficiently addressing issues despite some dissatisfaction with scanning times.
When we need clarifications, we contact our account manager, and they arrange demos.
For more quotes and insights, download the JFrog Xray report
No quotes available
For more quotes and insights, download the PortSwigger Burp Suite Enterprise Edition report
 

Room For Improvement

Sentiment score
4.8
JFrog Xray needs improvements in documentation, UI, reporting, performance, vulnerability management, integration, APIs, and troubleshooting support.
Sentiment score
3.5
PortSwigger Burp Suite Enterprise needs better false positive reduction, cloud access, enhanced features, and improved performance and cost efficiency.
X-ray needs improvement in supporting more than one database, as it currently only supports PostgreSQL.
For more quotes and insights, download the JFrog Xray report
No quotes available
For more quotes and insights, download the PortSwigger Burp Suite Enterprise Edition report
 

Scalability Issues

Sentiment score
7.4
JFrog Xray is viewed as scalable, accommodating growth plans, despite some PostgreSQL constraints, and rates scalability 7-8/10.
No sentiment score available
PortSwigger Burp Suite Enterprise Edition suits medium enterprises, handles multiple users well, but may need platforms for enhanced scalability.
 

Stability Issues

Sentiment score
8.2
JFrog Xray is praised for stability and performance, though its provided PostgreSQL is considered unstable, needing enterprise support.
Sentiment score
9.1
Opinions on Burp Suite Enterprise's stability vary, with some praising it while others note instability and efficiency issues.
 

Valuable Features

Sentiment score
8.0
JFrog Xray efficiently blocks vulnerabilities with policy watches, integrates with Artifactory, and excels in scanning and license compliance.
Sentiment score
6.3
PortSwigger Burp Suite Enterprise offers intuitive, scalable vulnerability assessment with automation, customizable scripts, and praised technical support.
The most valuable features of JFrog Xray are its curation capabilities, its native integration with Artifactory, scanning for vulnerabilities, and license compliance features.
For more quotes and insights, download the JFrog Xray report
No quotes available
For more quotes and insights, download the PortSwigger Burp Suite Enterprise Edition report
 

Setup Cost

No sentiment score available
No sentiment score available
PortSwigger Burp Suite Enterprise is costly yet powerful; many opt for cheaper Professional edition with similar features.
The basic scanning capabilities come with Artifactory, however, curation requires additional licenses.
For more quotes and insights, download the JFrog Xray report
No quotes available
For more quotes and insights, download the PortSwigger Burp Suite Enterprise Edition report
 

Categories and Ranking

JFrog Xray
Ranking in Vulnerability Management
22nd
Average Rating
8.0
Reviews Sentiment
7.1
Number of Reviews
8
Ranking in other categories
Container Security (19th), Software Composition Analysis (SCA) (6th), Software Supply Chain Security (3rd)
PortSwigger Burp Suite Ente...
Ranking in Vulnerability Management
21st
Average Rating
8.0
Reviews Sentiment
7.4
Number of Reviews
11
Ranking in other categories
Dynamic Application Security Testing (DAST) (5th)
 

Mindshare comparison

As of November 2024, in the Vulnerability Management category, the mindshare of JFrog Xray is 1.0%, up from 0.1% compared to the previous year. The mindshare of PortSwigger Burp Suite Enterprise Edition is 1.2%, down from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management
 

Featured Reviews

Mokshi Pandita - PeerSpot reviewer
An intelligent solution that prioritizes which vulnerability to target first in your project
We could create any number of repositories, but we can create only thirty projects with JFrog Xray. If I want things to work, it has to be one project and multiple repositories that belong to different real projects. So I have a limitation of thirty projects, despite being a premium customer. JFrog Xray does not have a dashboard. Although I am able to generate reports, there is no proper dashboard where I can see the total number of vulnerabilities, the total number of license issues, and how many vulnerabilities are fixed. Second, I found the shift left approach missing with JFrog Xray. JFrog Xray has integration with IDEs, but it does not tell you about the vulnerabilities until the artifact is created. However, Snyk could directly integrate with your repository and would not allow you to build unless you fix the problem.
Read full review
Iwegbue Godspower Isioma - PeerSpot reviewer
A seamless and easy-to-use solution that enables organizations to conduct vulnerability assessments and penetration testing
I recommend the solution to others. We can run SQL injection in Burp Suite Community Edition but not scan the websites. We would need Burp Suite Professional for it. We can use the solution to scan web applications and escalate vulnerabilities. We can do penetration testing on the vulnerabilities that are detected on the web application. The tool also provides other features that we can use to simulate attacks for learning purposes. Overall, I rate the tool a nine out of ten.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
See recommendations
816,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
24%
Manufacturing Company
15%
Computer Software Company
13%
Healthcare Company
5%
Financial Services Firm
17%
Computer Software Company
14%
Government
11%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about JFrog Xray?
JFrog Xray shows us a list of vulnerabilities that can impact our code.
See all answers
What needs improvement with JFrog Xray?
There is a tool called DefectDojo for reporting. Reporting is crucial, but it is lacking in the current tool. Every organization seeks specific data points rather than general information. Therefor...
See all answers
What is your primary use case for JFrog Xray?
We use this solution to identify vulnerabilities in the dependency file. We have the Artifactory package which integrates with Xray-like plugins. We can automatically plug this tool into Xray to co...
See all answers
What do you like most about PortSwigger Burp Suite Enterprise Edition?
Parallel scans can be done with PortSwigger Burp Suite Enterprise Edition.
See all answers
What is your experience regarding pricing and costs for PortSwigger Burp Suite Enterprise Edition?
For Enterprise, I'm not sure of the pricing. For Professional, it's about $400 per year. If you're using it as it should be used, the pricing is reasonable based on the benefits it provides.
See all answers
What needs improvement with PortSwigger Burp Suite Enterprise Edition?
Scalability could be better. It's primarily focused on dynamic application security testing but might require integration with another platform to handle larger environments efficiently.
See all answers
 

Comparisons

Black Duck vs JFrog Xray Logo
Black Duck vs JFrog Xray
Compared 21% of the time
Trivy vs JFrog Xray Logo
Trivy vs JFrog Xray
Compared 13% of the time
Veracode vs JFrog Xray Logo
Veracode vs JFrog Xray
Compared 7% of the time
Snyk vs JFrog Xray Logo
Snyk vs JFrog Xray
Compared 6% of the time
Prisma Cloud by Palo Alto Networks vs JFrog Xray Logo
Prisma Cloud by Palo Alto Networks vs JFrog Xray
Compared 6% of the time
More JFrog Xray Competitors
Acunetix vs PortSwigger Burp Suite Enterprise Edition Logo
Acunetix vs PortSwigger Burp Suite Enterprise Edition
Compared 36% of the time
Tenable Nessus vs PortSwigger Burp Suite Enterprise Edition Logo
Tenable Nessus vs PortSwigger Burp Suite Enterprise Edition
Compared 12% of the time
Fortify WebInspect vs PortSwigger Burp Suite Enterprise Edition Logo
Fortify WebInspect vs PortSwigger Burp Suite Enterprise Edition
Compared 9% of the time
Tenable Vulnerability Management vs PortSwigger Burp Suite Enterprise Edition Logo
Tenable Vulnerability Management vs PortSwigger Burp Suite Enterprise Edition
Compared 6% of the time
Rapid7 Metasploit vs PortSwigger Burp Suite Enterprise Edition Logo
Rapid7 Metasploit vs PortSwigger Burp Suite Enterprise Edition
Compared 5% of the time
More PortSwigger Burp Suite Enterprise Edition Competitors
 

Product Reports

Buyer's Guide
JFrog Xray
November 2024
JFrog Xray reportDownload JFrog Xray product report
Buyer's Guide
PortSwigger Burp Suite Enterprise Edition
November 2024
PortSwigger Burp Suite Enterprise Edition reportDownload PortSwigger Burp Suite Enterprise Edition product report
 

Also Known As

JFrog Security Essentials
No data available
 

Learn More

JFrog
PortSwigger
 

Overview

JFrog is on a mission to enable continuous updates through Liquid Software, empowering developers to code high-quality applications that securely flow to end-users with zero downtime. The world’s top brands such as Amazon, Facebook, Google, Netflix, Uber, VMware, and Spotify are among the 4500 companies that already depend on JFrog to manage binaries for their mission-critical applications. JFrog is a privately-held, global company, and is a proud sponsor of the Cloud Native Computing Foundation [CNCF].

If you are a team player and you care and you play to WIN, we have just the job you're looking for.

As we say at JFrog: "Once You Leap Forward You Won't Go Back!"​

Burp Suite Enterprise Edition is an automated web vulnerability scanner, designed to enable enterprises to scale security across their web portfolios and achieve DevSecOps. Automate trusted Burp scans, integrate web security testing with development, and free your application security to support software development.

 

Sample Customers

google, amazon, cisco, netflix, oracle, vmware, facebook
Nasa, Disney, Dow Jones, Iberia Bank, IBM, Ernest and Young, Apple, Ryanair, Thyssenkrupp, Delivery Hero
Buyer's Guide
JFrog Xray vs. PortSwigger Burp Suite Enterprise Edition
October 2024
Free Report: JFrog Xray vs. PortSwigger Burp Suite Enterprise Edition
Find out what your peers are saying about JFrog Xray vs. PortSwigger Burp Suite Enterprise Edition and other solutions. Updated: October 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.
See our JFrog Xray vs. PortSwigger Burp Suite Enterprise Edition report.
See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.